Tags

Blue Coat dominates network security forensics market

Blue Coat Systems has been acknowledged for its dominance in the global network security forensics market, with Frost & Sullivan presenting the company with a Leadership Award for capturing the highest market share within its industry.

According to Frost & Sullivan, Blue Coat achieved 14% share in the $1 billion-plus network security forensics market in 2015, making it the market leader.

“As the traditional notion of the network perimeter has expanded, so too has the attack surface. There are now endless entry points for cyber-attacks. Blue Coat’s mission is to provide enterprises a way to not only block attacks before they happen, but track, respond to and mitigate any attacks that do happen,” Hall says.

Ultimately, Blue Coat Security Analytics focuses on finding the root cause of a security incident, either as it is happening or in a forensic investigation. The solution uses a combination of packet inspection, intelligence services, and metadata enrichment to determine the severity of a potential threat.

“Unlike competitors that often use only packet headers and metadata for visibility into potential security incidents, Blue Coat Security Analytics seeks to empower security professionals with full packet capture, indexing and analysing packets to offer maximum resolution in a forensics investigation,” explains Kissel.

“While most of the information that is contained in the packet headers is needed to route the packet over the Internet and to pass traffic through Web servers, the byte level granularity of packet data provides a forensic chain of exactly what happened before, during and after a security incident,” he says.

Further, Blue Coat Security Analytics can be deployed as hardware appliances installed on an on-premises network or be included as VMware virtual appliance, software and direct attached or storage area network (SAN) storage modules, which can scale to petabytes of storage for extended capture windows. For remote locations, virtual sensors can be deployed. The Security Analytics Central Manager can then be used to aggregate appliances, sensors and virtual machines.

With the recent acquisition of Elastica, Blue Coat now provides cloud application security and visibility that complements Security Analytics.